HTTP Brute Force Attempt

I was contacted by a major government entity about an HTTP Brute Force attack/attempt coming from my institution.  Their IDS triggered on a researcher in my organization attempting to login to one of their training websites.  The user forgot their p

rule shadows

I'm trying to clean up our rules, specifically the shadows.  I've run in to one rule that is shadowing 6 others:

- Rule 'rule208' shadows rule 'rule211'

- Rule 'rule208' shadows rule 'rule212'

- Rule 'rule208' shadows rule 'rule292'

- Rule 'rule208' shad

How to reset the unused rules counter ?

Hi,

How can I reset the "unused rules" counter without reboot the firewall ? Is there a command for this ?

Regards,

julien

global Protect

Hi All,

I tried to configure Global protect on my PA500. According to docuementation available on site, I configured Global Protect Cert Auth but If I try to create a Global Protect server cert signed by GP Cert auth, I have an error (Failed to genera

youtube won't work with web-advertisements being blocked

Does anyone know how to get around this?  We have enable web-advertisements to be blocked within our URL filering.  When going to www.youtube.com and some other sites, the site is there but will not play content.

Any ideas how to get the best of both

Palo Alto Dev Adapter for BBNA

Hi,

does anybody know whether there is a working device adapter for Palo Alto Firewalls (Version 3.1.7) for integration into BBNA (BMC BladeLogic Network Automation)?

If there's none, I'll probably have to write a simple adapter myself.

Thanks!

Block tunneling applications (CC Proxy)..

Hi,

Is there any way i could try to block tunneling applications like CC proxy ?

Please let me know your valuable comments on this.

Thanks,

Roshith.

Can ts-agent support xen-desktop?

Hi all.

I find that PANOS 4.0.1 release note and PAN support XEN-APP6. but I could not find something about xen-desktop. I want to know that TS-agent can support xen-desktop or not. if PA can not, when will PA support xendesktop as user-id agent?

Thank

Detecting Botnets, Virus and Vulnerabilities after migration to 4.0.1

Hi, will like to understand what other users can mention about their experience with the detection capabilities for Botnet, Virus and Vulnerabilities.

We started to use a PA-500 with PAN-OS 4.0.1 with latest App,Virus and URL updates in Tap Mode but d

Upgraded to 3.1.8 and have a mismatch OS with HA

Upgraded the active 2050 to 3.1.8.

Passive 2050 now has a PAN-OS Version mismatch.

I cannot reach the passive firewall through the management port anymore, cli or browser.

Is there a procedure for this?

Thanks.

Support Palo-Alto on Opera

Hi,

I'm using Opera in many cases and I have some issue with my browser as it looks like it is not supported but when using functionalities from Opera to be seen as firefox it works but sometimes fails.

Can you have Opera supported pleae .

I have alos i

4.0.1 Unable to commit error "drop-packets is unexpected"

After upgrade from 3.1.7 to 4.0.1 and while attempting to configure the botnet reports; I tried to commit and recieved this error:

profiles -> spyware -> Spyware-Alert -> phone-home-detection -> custom -> 12656 -> action -> drop-packets is unexpected

I

Custom App with Dynamic

If I have a custom application which uses default port as tcp/dynamic, and then on the application override policy, I define a TCP range, say 9400-9699, and configure a policy which allows this app, with service as 'application-default', what would b